Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/kNw5u8owQnkGBlPhIt_mbUs8bHM.roa
File: kNw5u8owQnkGBlPhIt_mbUs8bHM.roa (raw, json)
Hash identifier: Aa+3xOdk+vR4A9iz6UdCU0knAoF5ANJchLkB8QXgGwI=
Subject key identifier: 90:DC:39:BB:CA:30:42:79:06:06:53:E1:22:DF:E6:6D:4B:3C:6C:73
Certificate issuer: /CN=6f5792ab8b759aa773038d92077a99bcf8d81aa0
Certificate serial: ED35
Authority key identifier: 6F:57:92:AB:8B:75:9A:A7:73:03:8D:92:07:7A:99:BC:F8:D8:1A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1eSq4t1mqdzA42SB3qZvPjYGqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/kNw5u8owQnkGBlPhIt_mbUs8bHM.roa
Signing time: Thu 28 Apr 2022 09:36:47 +0000
ROA not before: Thu 28 Apr 2022 09:36:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 193.22.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60725 (0xed35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5792ab8b759aa773038d92077a99bcf8d81aa0
Validity
Not Before: Apr 28 09:36:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90dc39bbca304279060653e122dfe66d4b3c6c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fb:e9:87:7d:47:3d:a2:59:cc:22:8d:83:b9:
57:cb:18:6d:17:f1:18:67:e5:a2:d0:56:80:d8:4e:
9e:f5:a3:93:08:49:2a:79:ba:4f:88:e3:bc:59:a2:
f6:1b:1e:02:04:1d:7f:69:b6:06:e8:bb:c1:39:81:
ac:9f:ab:6a:96:94:77:9d:86:37:e7:e5:98:e4:21:
89:01:42:05:37:a9:a4:87:17:a7:d4:74:e9:7d:c0:
20:fd:58:ba:7e:7f:af:07:58:b3:83:e9:2d:ca:d4:
48:ca:94:1c:a6:f7:61:95:ef:fa:c1:7d:90:75:8a:
75:e5:bb:8b:b6:c5:4e:b8:46:2a:53:fe:01:81:3e:
db:9a:53:b0:bd:a9:42:fa:c1:66:c3:cd:1d:c7:0c:
fb:a9:5e:e7:e2:2b:de:f5:d9:c6:14:5f:00:4e:17:
0b:f2:f0:39:28:92:f0:6e:1c:df:c1:4f:5b:38:bd:
2d:92:95:89:38:a0:35:d4:19:9a:a6:3d:bf:a8:58:
62:bb:15:78:8a:64:53:8e:c0:ce:84:0a:9a:9d:9c:
a1:1e:cd:a3:93:23:1f:71:6d:72:a2:56:1e:17:38:
e0:70:f1:f3:a8:83:c5:4b:db:5c:a0:35:0c:f5:f2:
47:65:af:7e:06:a9:58:1c:50:ba:f1:ba:35:92:80:
eb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DC:39:BB:CA:30:42:79:06:06:53:E1:22:DF:E6:6D:4B:3C:6C:73
X509v3 Authority Key Identifier:
keyid:6F:57:92:AB:8B:75:9A:A7:73:03:8D:92:07:7A:99:BC:F8:D8:1A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1eSq4t1mqdzA42SB3qZvPjYGqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/kNw5u8owQnkGBlPhIt_mbUs8bHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/b1eSq4t1mqdzA42SB3qZvPjYGqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.173.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ca:6c:14:ef:1b:4e:16:f5:05:a9:4f:61:66:ed:99:10:1f:
a2:65:4c:20:7b:9c:ce:de:f8:0b:c5:8d:fb:07:53:f6:72:a6:
90:d7:f4:af:5f:bc:c7:42:46:77:0e:d2:5d:61:de:79:0f:b5:
96:75:1e:6e:c4:8a:e5:11:33:39:f6:ea:52:81:8b:c7:ac:bd:
d3:cb:d1:b9:6f:56:ab:ec:28:9c:54:92:98:8b:42:47:62:a9:
45:5d:95:1f:0e:38:43:91:86:af:73:fa:30:f7:1e:63:18:48:
c6:53:a9:b5:19:4c:c3:40:f6:80:75:13:66:de:86:74:02:30:
6e:41:19:e6:3e:3a:c4:96:54:46:36:09:2b:11:16:7c:68:d9:
13:52:c0:c9:3e:35:82:44:84:23:cf:4c:1f:1b:3f:1a:67:25:
5f:1c:f0:ed:14:67:ea:14:1d:ea:7f:f0:f5:ca:1f:04:7e:89:
70:07:36:e2:5b:94:9d:7b:23:da:0e:26:16:61:2c:e6:4c:0f:
c6:49:0c:57:31:8e:c2:34:7b:0e:48:bd:8e:8e:1f:20:10:a7:
93:e5:5e:d4:d9:16:c3:3d:cf:74:5c:4c:a7:45:ee:23:01:34:
62:91:a4:94:37:1b:11:5b:b3:39:54:ac:5d:a2:fb:fd:71:a0:
bf:f1:2d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:54 2023 by rpki-client on console.sobornost.net